and more in a single search tool across platforms. Read the announcement here. |
01/24/2024 06:42 AM
Hi Team,
We are trying to provision accounts to OKTA via a REST OOTB connector using an Okta API with credentials for that user to login as well. The API works fine via POSTMAN and the user is able to login. However, when we try to replicate the API in Saviynt, it gives us the below error:
{\"message\":\"Unexpected character ('}' (code 125)): was expecting a colon to separate field name and value\\n at [Source: {\\\"profile\\\": {\\\"firstName\\\": \\\"Okta\\\", \\\"lastName\\\": \\\"UAT2\\\",\\\"displayName\\\": \\\"Okta UAT2\\\", \\\"organization\\\": \\\"xxxxxx xxxx Hong Kong CO LTD\\\", \\\"email\\\": \\\"Okta.Uat2@xxxx.cn\\\", \\\"login\\\": \\\"Okta.Uat2@xxxx.cn\\\"},\\\"credentials\\\": {\\\"password\\\": {\\\"value\\\": {\\\"************\\\"} }}}; line: 1, column: 279]\",\"status\":\"Failed\"}
The createaccountjson is below:
{
"accountIdPath": "call1.message.id",
"call": [
{
"name": "call1",
"connection": "acctAuth",
"url": "https://XXXX.okta.com/api/v1/users?activate=true",
"httpMethod": "POST",
"httpParams": "{\"profile\": {\"firstName\": \"${user.firstname}\", \"lastName\": \"${user.lastname}\",\"displayName\": \"${user.displayname}\", \"organization\": \"${user.companyname}\", \"email\": \"${user.email}\", \"login\": \"${user.email}\"},\"credentials\": {\"password\": {\"value\": {\"${password}\"}}}}",
"httpHeaders": {
"Authorization": "${access_token}"
},
"httpContentType": "application/json",
"successResponses": {
"statusCode": [
204,
201,
200
]
},
"unsuccessResponses": {
"statusCode": [
404,
401,
400
]
}
}
]
}
We would like to provision the user account with the credentials mapped to it, can we please get some assistance on the resolution here.
Please let us know for any other information as well.
Thanks,
Aashish Handa
01/29/2024 01:54 AM
Can you confirm if the provisioning is working fine without passing the credentials/password.?
01/29/2024 02:25 AM
Yes, the provisioning works fine then. Please find the createaccountjson without credentials:
{
"call": [
{
"name": "call1",
"connection": "acctAuth",
"url": "https://xxxxx.okta.com/api/v1/users",
"httpMethod": "POST",
"httpParams": "{\"profile\": {\"firstName\": \"${user.firstname}\", \"lastName\": \"${user.lastname}\",\"displayName\": \"${user.displayname}\", \"email\": \"${user.email}\", \"login\": \"${user.email}\" }}",
"httpHeaders": {
"Authorization": "${access_token}"
},
"httpContentType": "application/json"
}
]
}
Thanks
01/29/2024 08:55 PM
02/01/2024 01:21 AM
Hi Ashish,
Please share the POSTMAN Request and Response for this
02/01/2024 02:29 AM
Hi @adarshk ,
Sure, PFB:
URL : https://xxxx.okta.com/api/v1/users?activate=true
Body:
02/01/2024 09:46 PM
Does hardcoded password works ?
02/01/2024 11:43 PM
Works for postman, in general. When moving it to Saviynt, we will be using a password policy.
Thanks
02/02/2024 08:04 PM
Hardcode password in saviynt JSON and try